This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/594d25-f1c6-4044-a8a7-c8f182e95ea5/1/g1rCh6JOwkuyFx1RMKVRwzuU63w.roa File: g1rCh6JOwkuyFx1RMKVRwzuU63w.roa (raw, json) Hash identifier: i/ipa9GmfRXAeA2Xih2V+tPcO2aG20N/7/cUFxqZ3v8= Subject key identifier: 83:5A:C2:87:A2:4E:C2:4B:B2:17:1D:51:30:A5:51:C3:3B:94:EB:7C Certificate issuer: /CN=0e64f81b9e36b849917787678d014db4bfcef311 Certificate serial: 019B78A2A71F887F8CD305C20D0B5A629D77 Authority key identifier: 0E:64:F8:1B:9E:36:B8:49:91:77:87:67:8D:01:4D:B4:BF:CE:F3:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DmT4G542uEmRd4dnjQFNtL_O8xE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/594d25-f1c6-4044-a8a7-c8f182e95ea5/1/g1rCh6JOwkuyFx1RMKVRwzuU63w.roa Signing time: Thu 01 Jan 2026 08:18:04 +0000 ROA not before: Thu 01 Jan 2026 08:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3258 IP address blocks: 91.243.68.0/24 maxlen: 24 146.19.19.0/24 maxlen: 32 146.19.163.0/24 maxlen: 32 194.50.154.0/24 maxlen: 32 2a12:a300::/29 maxlen: 128 2a14:1f80::/29 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/594d25-f1c6-4044-a8a7-c8f182e95ea5/1/DmT4G542uEmRd4dnjQFNtL_O8xE.crl rsync://rpki.ripe.net/repository/DEFAULT/17/594d25-f1c6-4044-a8a7-c8f182e95ea5/1/DmT4G542uEmRd4dnjQFNtL_O8xE.mft rsync://rpki.ripe.net/repository/DEFAULT/DmT4G542uEmRd4dnjQFNtL_O8xE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:a7:1f:88:7f:8c:d3:05:c2:0d:0b:5a:62:9d:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e64f81b9e36b849917787678d014db4bfcef311 Validity Not Before: Jan 1 08:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=835ac287a24ec24bb2171d5130a551c33b94eb7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b4:a1:be:5e:54:3c:1d:f2:07:71:f4:24:d2: 1d:6b:05:79:23:71:6a:00:bb:7a:0b:1c:28:18:b5: 12:fa:3e:5e:f3:35:be:fb:f3:f6:03:1f:76:8c:a8: 25:d6:e4:2f:67:f2:56:e9:b8:8c:20:89:84:1d:b8: 01:5d:3e:1f:fc:29:6f:73:3d:dc:35:3d:db:e4:c3: 41:c1:c7:0c:ec:c7:59:ea:95:0d:02:94:f8:06:00: 87:fe:9d:a3:9e:47:f3:54:60:e5:15:b0:bf:db:9e: d5:ef:9b:4e:7f:73:18:72:b6:dc:72:cf:b4:f4:31: 11:80:9f:c2:5e:d5:23:d7:3f:a9:fa:15:c9:c1:48: da:37:42:26:23:2c:78:eb:a7:60:02:c1:cc:46:9d: 3e:b2:ab:a0:3b:b3:16:db:63:9d:91:26:16:d7:d4: c4:ef:eb:41:cc:34:57:ee:c6:c7:fd:86:f7:be:37: 68:88:b9:f8:f9:07:97:f6:11:60:8a:35:46:6d:63: 6c:04:2b:e8:f2:b7:45:98:96:d4:d2:6f:9d:06:d8: c2:5b:4f:9f:76:84:cc:14:45:ff:b3:8e:36:22:4f: f8:80:7c:79:c5:3e:c4:c8:0a:02:14:9d:76:cc:8e: b9:a7:97:bf:7c:3b:bc:3f:8b:3b:02:ac:6b:a5:d2: e9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:5A:C2:87:A2:4E:C2:4B:B2:17:1D:51:30:A5:51:C3:3B:94:EB:7C X509v3 Authority Key Identifier: keyid:0E:64:F8:1B:9E:36:B8:49:91:77:87:67:8D:01:4D:B4:BF:CE:F3:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DmT4G542uEmRd4dnjQFNtL_O8xE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/594d25-f1c6-4044-a8a7-c8f182e95ea5/1/g1rCh6JOwkuyFx1RMKVRwzuU63w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/594d25-f1c6-4044-a8a7-c8f182e95ea5/1/DmT4G542uEmRd4dnjQFNtL_O8xE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.243.68.0/24 146.19.19.0/24 146.19.163.0/24 194.50.154.0/24 IPv6: 2a12:a300::/29 2a14:1f80::/29 Signature Algorithm: sha256WithRSAEncryption 5c:fb:e8:a6:4e:9b:9b:37:4e:47:92:3d:11:c5:20:7e:9e:66: 73:fd:12:c6:94:7d:ec:34:95:f2:04:fe:25:de:89:2d:6c:da: 6a:94:e5:8e:6e:1c:5e:c7:fe:e9:9f:c6:76:6d:db:cb:2b:f2: f9:87:50:9e:ee:dd:3b:bc:22:65:87:66:f2:12:20:b3:f5:d4: 4c:88:6b:93:72:77:82:aa:6d:ef:af:1d:51:16:85:c2:9a:46: 62:81:97:c7:e3:cb:f3:c5:94:06:dd:57:9b:a9:7c:8a:ac:85: e9:03:b9:57:d6:cb:fe:8f:f7:48:aa:e5:7c:69:6a:b1:c6:bf: e2:dc:f6:57:b4:c8:04:f0:e1:80:b1:0a:37:5d:79:02:84:a6: 1a:67:0c:82:99:f5:67:68:f1:b3:72:f0:57:0b:7e:aa:c2:7a: 26:f1:e2:97:ca:b3:a8:02:57:57:d8:87:73:6c:44:61:50:47: 47:af:f7:2a:36:a4:b8:fc:ab:60:8f:89:04:82:68:84:8d:e1: 8a:87:e6:a8:a8:0b:a2:60:4a:a8:89:4b:42:21:55:91:c0:ec: 4f:0d:39:4e:0a:f8:6a:64:37:0e:0b:08:c0:53:c1:97:8b:25: 35:b0:2e:cf:74:4e:c7:64:c4:3b:60:82:9d:ac:26:23:2e:b9: fa:a7:f1:df -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt4oqcfiH+M0wXCDQtaYp13MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlNjRmODFiOWUzNmI4NDk5MTc3ODc2NzhkMDE0ZGI0YmZj ZWYzMTEwHhcNMjYwMTAxMDgxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzVhYzI4N2EyNGVjMjRiYjIxNzFkNTEzMGE1NTFjMzNiOTRlYjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbShvl5UPB3yB3H0JNIdawV5I3Fq ALt6CxwoGLUS+j5e8zW++/P2Ax92jKgl1uQvZ/JW6biMIImEHbgBXT4f/Clvcz3c NT3b5MNBwccM7MdZ6pUNApT4BgCH/p2jnkfzVGDlFbC/257V75tOf3MYcrbccs+0 9DERgJ/CXtUj1z+p+hXJwUjaN0ImIyx466dgAsHMRp0+squgO7MW22OdkSYW19TE 7+tBzDRX7sbH/Yb3vjdoiLn4+QeX9hFgijVGbWNsBCvo8rdFmJbU0m+dBtjCW0+f doTMFEX/s442Ik/4gHx5xT7EyAoCFJ12zI65p5e/fDu8P4s7AqxrpdLpGwIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFINawoeiTsJLshcdUTClUcM7lOt8MB8GA1UdIwQY MBaAFA5k+BueNrhJkXeHZ40BTbS/zvMRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRG1UNEc1NDJ1RW1SZDRkbmpRRk50TF9POHhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy81OTRkMjUtZjFjNi00MDQ0LWE4YTct YzhmMTgyZTk1ZWE1LzEvZzFyQ2g2Sk93a3V5RngxUk1LVlJ3enVVNjN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy81OTRkMjUtZjFjNi00MDQ0LWE4YTctYzhmMTgyZTk1ZWE1 LzEvRG1UNEc1NDJ1RW1SZDRkbmpRRk50TF9POHhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAeBAIAATAYAwQAW/NEAwQA khMTAwQAkhOjAwQAwjKaMBQEAgACMA4DBQMqEqMAAwUDKhQfgDANBgkqhkiG9w0B AQsFAAOCAQEAXPvopk6bmzdOR5I9EcUgfp5mc/0SxpR97DSV8gT+Jd6JLWzaapTl jm4cXsf+6Z/Gdm3byyvy+YdQnu7dO7wiZYdm8hIgs/XUTIhrk3J3gqpt768dURaF wppGYoGXx+PL88WUBt1Xm6l8iqyF6QO5V9bL/o/3SKrlfGlqsca/4tz2V7TIBPDh gLEKN115AoSmGmcMgpn1Z2jxs3LwVwt+qsJ6JvHil8qzqAJXV9iHc2xEYVBHR6/3 KjakuPyrYI+JBIJohI3hiofmqKgLomBKqIlLQiFVkcDsTw05Tgr4amQ3DgsIwFPB l4slNbAuz3ROx2TEO2CCnawmIy65+qfx3w== -----END CERTIFICATE-----Generated at Sun Jan 25 19:38:25 2026 by rpki-client